Details
-
Bug
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
None
-
Security Level: Public (Anyone can view this level - this is the default.)
-
None
Description
Apply rule (delete) is success on failure of ip assoc on back end. Cloudstack ignored the ip assoc failure.
Due to this the ip got freed and assigned to another network/account. It caused the ip to be present in more than one router.
Fix: Failing the apply rule (delete) on ipassoc failure
Repro steps:
1. Configure PF/static nat/Firewall rules
2. Delete the rule configured.
On deleting the rule, fail the ip assoc on the router.
3. Delete rule fails because ip assoc got failed.
For RVR:
1. acquire several public ips,
2. add some rules on those public ips, so ips should show up in RVR,
3. change ipassoc.sh in RVR, make it always returns error on disassociate ip.
4. disassociate ip from UI, ip should is freed even though disassociate fails inside VR.
Attachments
Issue Links
- links to
